2007-03-20 10:00:00
mitre
PUBLISHED
product_review.php in Koan Software Mega Mall allows remote attackers to obtain the installation path via a request with an empty value of the x[] parameter.